Overview

URL https://tinyurl.com/y4r8vfwk
IP104.20.219.42
ASNAS13335 CloudFlare, Inc.
Location United States
Report completed2019-06-10 03:52:36 CEST
StatusLoading report..
urlquery Alerts DynDNS domain detected


Settings

UserAgentMozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Referer
Pool
Access Level


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blacklists

MDL  No alerts detected
OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2019-06-10 2 datadropbox3061.ddns.net/dropbox/viewdoc Phishing
2019-06-10 2 datadropbox3061.ddns.net/dropbox/viewdoc/ Phishing
2019-06-10 2 datadropbox3061.ddns.net/dropbox/viewdoc/asset/dropbox_logo_text_2015-vfld7 (...) Phishing
2019-06-10 2 datadropbox3061.ddns.net/dropbox/viewdoc/asset/dropbox_logo_glyph_2015-vfl4 (...) Phishing
DNS-BH  No alerts detected
mnemonic secure dns  No alerts detected


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 104.20.219.42

Date UQ / IDS / BL URL IP
2019-06-30 01:15:21 +0200
0 - 0 - 2 tinyurl.com/y6pjcklz 104.20.219.42
2019-06-30 00:56:43 +0200
0 - 1 - 1 tinyurl.com/y2ehncc9 104.20.219.42
2019-06-27 15:54:12 +0200
0 - 0 - 2 https://tinyurl.com/y2am6otc/521358 104.20.219.42
2019-06-20 14:55:01 +0200
0 - 0 - 0 https://tinyurl.com/yxud6tjg 104.20.219.42
2019-06-19 16:29:45 +0200
0 - 0 - 0 https://tinyurl.com/y5z687gd 104.20.219.42
2019-06-18 14:44:13 +0200
0 - 0 - 1 tinyurl.com/Premierinc-ReviewDoc 104.20.219.42
2019-06-17 19:22:16 +0200
0 - 0 - 1 https://tinyurl.com/yycvyvfe 104.20.219.42
2019-06-14 09:54:12 +0200
0 - 0 - 0 https://tinyurl.com/prices-iribuya 104.20.219.42
2019-06-13 22:36:16 +0200
0 - 0 - 0 https://tinyurl.com/yyww3fk2 104.20.219.42
2019-06-12 18:03:39 +0200
0 - 0 - 0 www.tinyurl.com/eomevh 104.20.219.42

Last 10 reports on ASN: AS13335 CloudFlare, Inc.

Date UQ / IDS / BL URL IP
2019-07-04 10:47:28 +0200
0 - 0 - 0 https://www.bitchute.com/video/nGjzUqQzi423/ 104.24.23.87
2019-07-02 09:55:24 +0200
0 - 0 - 0 Finddreamjobs.com 104.17.47.14
2019-07-02 09:51:03 +0200
0 - 0 - 0 https://www.bitchute.com/video/ix3LoPLzjS8a/ 104.24.23.87
2019-07-02 09:50:01 +0200
0 - 0 - 0 https://www.bitchute.com/video/RNGAJQK1s8Qx/ 104.24.22.87
2019-07-02 09:49:59 +0200
0 - 0 - 0 https://www.bitchute.com/video/HUEWirPZXMOI/ 104.24.23.87
2019-07-02 09:49:58 +0200
0 - 0 - 0 https://www.bitchute.com/video/GRkaogicSTRt/ 104.24.23.87
2019-07-02 09:49:56 +0200
0 - 0 - 0 https://www.bitchute.com/video/0vPgxEoFvLs8/ 104.24.23.87
2019-07-02 09:49:34 +0200
0 - 0 - 0 https://www.bitchute.com/video/rhOuRaIOHJdb/ 104.24.22.87
2019-07-02 09:49:31 +0200
0 - 0 - 0 https://www.bitchute.com/video/0gdUIrC1FwTV/ 104.24.23.87
2019-07-02 09:49:30 +0200
0 - 0 - 0 https://www.bitchute.com/video/9TSaSoV97QZI/ 104.24.22.87

Last 10 reports on domain: tinyurl.com

Date UQ / IDS / BL URL IP
2019-06-30 01:23:44 +0200
0 - 0 - 2 tinyurl.com/yykxlcu5 104.20.218.42
2019-06-30 01:17:32 +0200
0 - 1 - 1 tinyurl.com/y62g7yqv 104.20.218.42
2019-06-30 01:15:21 +0200
0 - 0 - 2 tinyurl.com/y6pjcklz 104.20.219.42
2019-06-30 01:02:46 +0200
0 - 1 - 1 tinyurl.com/y5ewqorp 104.20.218.42
2019-06-30 00:58:57 +0200
0 - 0 - 0 tinyurl.com/yytet3zr 104.20.218.42
2019-06-30 00:56:43 +0200
0 - 1 - 1 tinyurl.com/y2ehncc9 104.20.219.42
2019-06-27 15:54:12 +0200
0 - 0 - 2 https://tinyurl.com/y2am6otc/521358 104.20.219.42
2019-06-26 06:45:11 +0200
0 - 0 - 0 tinyurl.com/y3lpuf7k%22%3ECotizacion.zip 104.20.218.42
2019-06-25 23:15:12 +0200
0 - 1 - 1 tinyurl.com/y5sksek6 104.20.218.42
2019-06-25 19:10:45 +0200
0 - 1 - 1 tinyurl.com/y5ue3cz7 104.20.218.42


JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (36)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 01:52:03 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 06 Jun 2019 05:22:17 GMT
Server: Apache
Etag: C302E7CB9F7F8808396EF2EF99933F5B9416D67C
Cache-Control: max-age=304044,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp14
X-HW: 1560131523.cds048.sk1.h2,1560131523.cds041.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    d70a4c8b4ee464626d9b58a035c4c41c
Sha1:   c302e7cb9f7f8808396ef2ef99933f5b9416d67c
Sha256: a760d728183729751d15a02f8683d2cbf41032e9e967ba86564e5bfd771f873f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca4.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 01:52:03 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 06 Jun 2019 12:14:19 GMT
Server: Apache
Etag: 260FDC2541DE8121C33609842613565304571816
Cache-Control: max-age=302397,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp2
X-HW: 1560131523.cds048.sk1.h2,1560131523.cds043.sk1.c
Connection: keep-alive
Content-Length: 727


--- Additional Info ---
Magic:  data
Size:   727
Md5:    134c2f5f8762b08520d1117c8c0d7327
Sha1:   260fdc2541de8121c33609842613565304571816
Sha256: 766f184ddf13769ac32138330a4556a0baca83485cdd4eb3e7a1fa6ed3c4356a
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         151.139.128.14
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 01:52:03 GMT
Accept-Ranges: bytes
Last-Modified: Thu, 06 Jun 2019 12:14:19 GMT
Server: Apache
Etag: B44FAF03540FCA33016D09282127AE20BEAA4CA4
Cache-Control: max-age=507466,public,no-transform,must-revalidate
X-OCSP-Responder-ID: mcdpcaocsp4
X-HW: 1560131523.cds019.sk1.h2,1560131523.cds047.sk1.c
Connection: keep-alive
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    fb545f5eec15e712c9606a6366bedb83
Sha1:   b44faf03540fca33016d09282127ae20beaa4ca4
Sha256: d23de25011516addadb4b89614cb41dcffe22cc4cab419e9f3d07835241c9f8e
                                        
                                            GET /y4r8vfwk HTTP/1.1 
Host: tinyurl.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.20.218.42
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Mon, 10 Jun 2019 01:52:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=db9dfe38798e8dffd8a4a4bb8f91133f41560131524; expires=Tue, 09-Jun-20 01:52:04 GMT; path=/; domain=.tinyurl.com; HttpOnly tinyUUID=cfdb7c9323c14d28817b0000; expires=Tue, 09-Jun-2020 01:52:04 GMT; Max-Age=31536000; path=/; domain=.tinyurl.com
Location: https://datadropbox3061.ddns.net/dropbox/viewdoc
X-tiny: cache 0.010381937026978
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4e47b4290b34cad8-ARN


--- Additional Info ---
                                        
                                            POST / HTTP/1.1 
Host: ocsp.int-x3.letsencrypt.org
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 117
Content-Type: application/ocsp-request

                                         
                                         80.239.159.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 527
Etag: "429C7995B32DA7B19BBBC1ACE6C2A2586CC2256B9FA6DDD280D82364EC38A130"
Last-Modified: Sun, 09 Jun 2019 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=43195
Expires: Mon, 10 Jun 2019 13:52:00 GMT
Date: Mon, 10 Jun 2019 01:52:05 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   527
Md5:    ee760fff8ada51c59d4fa3e793176eaf
Sha1:   d81eb80e150d0a8438bf46b641e1237c29d418b0
Sha256: 429c7995b32da7b19bbbc1ace6c2a2586cc2256b9fa6ddd280d82364ec38a130
                                        
                                            POST / HTTP/1.1 
Host: isrg.trustid.ocsp.identrust.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         80.239.159.17
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Apache
Content-Transfer-Encoding: Binary
Last-Modified: Fri, 07 Jun 2019 17:30:09 GMT
Etag: "2cf877ce4290fed2cae71c1172055582327ebf77"
Content-Length: 1398
Cache-Control: public, no-transform, must-revalidate, max-age=38211
Expires: Mon, 10 Jun 2019 12:28:56 GMT
Date: Mon, 10 Jun 2019 01:52:05 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  data
Size:   1398
Md5:    7859b70e303e40d2a50e56ec14efe2d6
Sha1:   2cf877ce4290fed2cae71c1172055582327ebf77
Sha256: 8e4bec54e49487ddb4f8c8ebe6e3088d526d9367a4233c2f18a2b65e13a55253
                                        
                                            GET /dropbox/viewdoc HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.192.28.70
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:05 GMT
Content-Length: 257
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://datadropbox3061.ddns.net/dropbox/viewdoc/


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   257
Md5:    d2aeab194a0c41208ad0da3df2c55833
Sha1:   dd1f0e062435319d1bdded3aab844848d9829165
Sha256: 7548a9a2306c25de51b5bb00a67f855265a0e89277fc57c0e7ef78d1370fe539

Alerts:
  urlquery:
    - DynDNS domain detected
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /dropbox/viewdoc/ HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.192.28.70
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:05 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/5.6.40
Location: main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46


--- Additional Info ---

Alerts:
  urlquery:
    - DynDNS domain detected
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46 HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:05 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f2-16e5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1661
Md5:    45de0fdef96e4ebf94958883afc00661
Sha1:   9cfe0b98e56005392b61cf1ca896c26e83d78630
Sha256: 8022131c581506d8bc16a90bd56a5f230c5d3c623abcdd794e277c04b77308ce

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=135509
Date: Mon, 10 Jun 2019 01:52:06 GMT
Etag: "5cfd261b-1d7"
Expires: Tue, 11 Jun 2019 15:30:35 GMT
Last-Modified: Sun, 09 Jun 2019 15:30:35 GMT
Server: nginx
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    b803696f32d1dc9cf795341a3a09f9b5
Sha1:   d90be489526b61c800f0435c13788844b870c9d6
Sha256: 3c54bf5ac0773badef133da3d82c7e372ee078995b6c94bc3b30bc1f4bb278d8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Cache-Control: max-age=129350
Date: Mon, 10 Jun 2019 01:52:06 GMT
Etag: "5cfcf989-1d7"
Expires: Tue, 11 Jun 2019 13:47:56 GMT
Last-Modified: Sun, 09 Jun 2019 12:20:25 GMT
Server: ECS (lcy/1D5A)
X-Cache: HIT
Content-Length: 471


--- Additional Info ---
Magic:  data
Size:   471
Md5:    a74aeb356212a7a6369ae2ff889b376c
Sha1:   5393d61af310ab6856a71a68594c17f693e9d9c1
Sha256: 0cab3936ddc2b16fab01e5f337787f26f6c31b7f271c6483c5f7e9996770f6ef
                                        
                                            GET /static/images/favicon-vflUeLeeY.ico HTTP/1.1 
Host: cfl.dropboxstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         104.16.99.29
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Date: Mon, 10 Jun 2019 01:52:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __cfduid=d143a8461137cfe19352cad093161d8941560131526; expires=Tue, 09-Jun-20 01:52:06 GMT; path=/; domain=.dropboxstatic.com; HttpOnly
Last-Modified: Tue, 30 Apr 2019 05:03:15 GMT
Vary: Accept-Encoding
Etag: W/"5cc7d713-183"
X-Dropbox-Request-Id: e51ee612195164796833f09df29fdee2
X-Content-Type-Options: nosniff
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public, immutable
Access-Control-Allow-Origin: *
Timing-Allow-Origin: https://www.dropbox.com
Content-Encoding: gzip
CF-Cache-Status: HIT
Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
Server: cloudflare
CF-RAY: 4e47b4375c6d4277-OSL


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   410
Md5:    9a773e922482d6e7a777ec50dcb19b18
Sha1:   27999c0c1eac1fada47abf051f23b8ef7467be1c
Sha256: 7dfcbd22aae0b5dc83434f291229bed0440ae329b1725eb7ab4cf9be62566939
                                        
                                            GET /dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46 HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:06 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f2-16e5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1661
Md5:    45de0fdef96e4ebf94958883afc00661
Sha1:   9cfe0b98e56005392b61cf1ca896c26e83d78630
Sha256: 8022131c581506d8bc16a90bd56a5f230c5d3c623abcdd794e277c04b77308ce

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            POST /GTSGIAG3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 115
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 01:52:06 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   471
Md5:    ca8ae49232fd47ecc7a528c21b98b907
Sha1:   c792d95e2de294acb5f2e67a7ec1cbdc83a785ab
Sha256: aef561931b45dd3a4f38b0d776de42abb8c5e34e425b2653351bab875b76211c
                                        
                                            POST /gsr2 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Content-Length: 112
Content-Type: application/ocsp-request

                                         
                                         172.217.21.163
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 10 Jun 2019 01:52:06 GMT
Cache-Control: public, max-age=86400
Server: ocsp_responder
Content-Length: 468
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  data
Size:   468
Md5:    5be872b3fe0bb6f31385f91f811e9586
Sha1:   1192231bcb9ee73e9f619d433cdb66dddd9ae7f7
Sha256: db0ad6191770bff9043482b68acf62a4e25d4390a03274cfbe413675dd8c9cf5
                                        
                                            GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: */*
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         216.58.211.138
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Length: 30306
Date: Sat, 01 Jun 2019 08:33:31 GMT
Expires: Sun, 31 May 2020 08:33:31 GMT
Last-Modified: Fri, 24 Mar 2017 20:55:54 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 753515
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   30306
Md5:    fc3fc31e5e7c0933dc18e562c1c071bf
Sha1:   a44c31323f6bd29e583cc585036e6eb39f7014a6
Sha256: ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
                                        
                                            GET /dropbox/viewdoc/asset/animation-vflzHcTyC.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:06 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f0-219"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   258
Md5:    95b8073c9a101365c14d5768fa3847bd
Sha1:   4174747552b21225532965150323336bcbeef422
Sha256: fd4c1ffd3b8805b9151b53c30fb6ed5be66a27b81abc5b16f200ebbc4da34f11

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/modal-vflS6pGZb.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:06 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d801-2f79"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   2559
Md5:    60ab12237c554414e6c6be20dd8edfc5
Sha1:   6c268242dfb543f084942ff4a435fee6ca9ac4b8
Sha256: e06fec51140b9f003b55eab6bef7a7d368b72ef9d34d5d0de15eed8d4dd8ab9c

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/web_sprites.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:19 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d803-19b25"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   7853
Md5:    b36d8509413ba3d603c0c8ba19da840e
Sha1:   99fadda8a233c4ee1576ab1e58bfaf47e79fa5f1
Sha256: 06705e25c5a239db4cbd640e8a5fbc0d271c42a0d1ae107f1eded923fa3658eb

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/components-vflfxQtKp.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f4-faae"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   9478
Md5:    4e51536d80a9dbc03e46132aade90ab6
Sha1:   86fa8a5b42c864591d8b0b2cf6c2942fe5da581d
Sha256: cd036c7353028256446ddaccafd1ade1e3b0fa1df22fd97bf2cb30740e804211

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/media_text-vfl6jBpfO.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d800-10e6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   921
Md5:    ab52f8068c61a73e7330d93092c58c5b
Sha1:   a71f302c9ee5c6f20cff01a8ebfa1454c414c5b6
Sha256: 72d8bcc5de84c899b9f3c796a1e6ebdbe91c97c116d501f52c723437f2f28a4b

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/base-vflQGhUQE.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f3-5b9b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   4043
Md5:    3f7ac8fc668c6eaddd62518592cc7276
Sha1:   26e478c53eddea650c22b4280a952a0f440ac101
Sha256: 958bb04a5eb1888a95810c71a73ddb396645459bcc4406ea3461659f7aca4c75

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/index-vfl0GyzuL.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7ff-5463"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   3208
Md5:    e695c0f9f635ab8a302f4bf93e84a634
Sha1:   bdb710bb0cff5f3dc429d690c17ed3c9a58706a7
Sha256: 20fcb755f1d25aacaf78e70ab892e1f2d51285aed26bba1c39cf2b5a9850251d

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/responsive_classes-vflX9R-EH.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 346
Last-Modified: Thu, 06 Jun 2019 09:08:17 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d801-15a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Bio-Rad .PIC Image File 27694 x 11618, 25645 images in file
Size:   346
Md5:    5fd47e10751a507be7ecb53519221481
Sha1:   2aa1da976b3d2a04f65d16ec2e06b8416ae76223
Sha256: e6062d7671d14f55543b88b68065c3ed76d8c8845f6e1889d3be89c79ffd10b8

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /css?family=Roboto:500 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/asset/components-vflfxQtKp.css

                                         
                                         216.58.207.202
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Expires: Mon, 10 Jun 2019 01:52:07 GMT
Date: Mon, 10 Jun 2019 01:52:07 GMT
Cache-Control: private, max-age=86400
Content-Encoding: gzip
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39"
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  gzip compressed data, max compression
Size:   192
Md5:    309d6e4b4697f343cb048b4c94f8a264
Sha1:   e5403a53ac55a42bcb45c30d9563911837fd690b
Sha256: 81eeccd3aadcf1e702fdb44537c019f5757096f6bf23a2548ff407f1a23aef77
                                        
                                            GET /dropbox/viewdoc/asset/css.css HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/css,*/*;q=0.1
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f5-696"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   657
Md5:    cad378e5d1a66055b7380a1048db949c
Sha1:   6daa28acf358622f616c222d9723e642acda5e22
Sha256: 8009886bd9750fe1db10eb84957196737fb6e06a9781d64915c9d60c6a5c9b6b

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/img/office365.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 3292
Last-Modified: Thu, 06 Jun 2019 09:08:32 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d810-cdc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 18 x 20, 8-bit/color RGBA, non-interlaced
Size:   3292
Md5:    4de66eadf92dd42d7ef50658698e95b5
Sha1:   fa2f18dbbf32fe58521b8b48aaec3eef98c65243
Sha256: 509f14f678e0c404768caab816b4fa9bc852fb6eecc312d3c5766e573728d8c4

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/img/aol.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 3608
Last-Modified: Thu, 06 Jun 2019 09:08:29 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d80d-e18"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 28 x 28, 8-bit/color RGBA, non-interlaced
Size:   3608
Md5:    5f03d8887a26d732b0c492cf3bda9bc6
Sha1:   4e49756b2658ebeebf63991f0e53999628d6ed95
Sha256: 43af65a3f143a8803c328e6dedf7a1c4ba3399f9ca3702747f926bd29f848b8d

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/img/googleplus.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 877
Last-Modified: Thu, 06 Jun 2019 09:08:30 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d80e-36d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 24 x 24, 8-bit/color RGBA, non-interlaced
Size:   877
Md5:    319e7011e2ac8f775994e4d0f381a528
Sha1:   5a722922cfe09d28386a6c6e46eaf990b42e55c2
Sha256: b7f1c1b63c583b5f242ec8f15846b4a61b30068d6667ac08196cfec496b48f28

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/img/Microsoft%20Account.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 338
Last-Modified: Thu, 06 Jun 2019 09:08:31 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d80f-152"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 24 x 24, 8-bit/color RGBA, non-interlaced
Size:   338
Md5:    ff52f4044a99430f2f1c579ff1484f33
Sha1:   a9aebb6f5026ef08d5ed33d7ede85fd45e533533
Sha256: 24db21fae57bd5aa0c40df6fd9c90b4bd152a5da86dd1e15020359279bec9c38

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/img/yahoo.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 1006
Last-Modified: Thu, 06 Jun 2019 09:08:32 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d810-3ee"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 24 x 24, 8-bit colormap, non-interlaced
Size:   1006
Md5:    aa355d6b19d7374faf466fbc570b0f49
Sha1:   0b126d98b83d30992d338d9982866330d8b023d2
Sha256: 26bef10a485574ebd888574482445977510d9325dba434622adfadf7659335fb

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/dropbox_logo_text_2015-vfld7_dJ8.svg HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/asset/base-vflQGhUQE.css

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f7-f0a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   1424
Md5:    7d30f90911cf8436159f1f5bc208c0a6
Sha1:   4f370f596f3ee5ce8145af74a83f0f6621e8ff7b
Sha256: 2b93cebe4d2bf9a5961bc36cac0cd2e2b111516f4c977dd84f9a65ff123e4ddb

Alerts:
  urlquery:
    - DynDNS domain detected
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /dropbox/viewdoc/img/email.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/main.html?accessToFile=true&fileAccess=3366&encryptedCookie=5003afbe243773ef46ad7598dbd75500&u=2939a4ef0d9c49dbb877d00b5c6af80a&connecting=006c11974154e0ad3e316cdf61ed3235&phaseAccess=42b28c1edf9897a29b1c1bf76945833e&p=97146d89482fa8fe6c4ec100f3ea6c46

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 4917
Last-Modified: Thu, 06 Jun 2019 09:08:29 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d80d-1335"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image, 28 x 28, 8-bit/color RGBA, non-interlaced
Size:   4917
Md5:    d25a0c81f7ed78aa6ecbc2cd9c0eb3d6
Sha1:   45657065aac80adb2b9199531c5a8c55f0a3a1aa
Sha256: 990aa67ecf61371ab81c3bed178270d7fedcf8c8e801bb4243233bc4bd024713

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /dropbox/viewdoc/asset/dropbox_logo_glyph_2015-vfl4ZOqXa.svg HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/asset/base-vflQGhUQE.css

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Last-Modified: Thu, 06 Jun 2019 09:08:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
Etag: W/"5cf8d7f6-407"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  gzip compressed data, from Unix
Size:   500
Md5:    5fbbc337519e89d7d167ef0609e8e75e
Sha1:   6517ff17530f042fc352131619d416b05a73abb1
Sha256: d4699842a6b38907dbbb3329206bf4d44e036aefbaece2824b28869862271529

Alerts:
  urlquery:
    - DynDNS domain detected
  Blacklists:
    - fortinet: Phishing
                                        
                                            GET /dropbox/viewdoc/asset/hero-poster.png HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: image/png,image/*;q=0.8,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive
Referer: https://datadropbox3061.ddns.net/dropbox/viewdoc/asset/css.css

                                         
                                         199.192.28.70
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:07 GMT
Content-Length: 302508
Last-Modified: Thu, 06 Jun 2019 09:08:13 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Etag: "5cf8d7fd-49dac"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01
Size:   302508
Md5:    6baba4f423b1df18869b13851bb3275b
Sha1:   564ed0f94e791b43cddc6b181fcf18f7b25b01fb
Sha256: 469dce367ec1947270b514e9007c12f933e94efbff1cd79e7849a51da2186fe4

Alerts:
  urlquery:
    - DynDNS domain detected
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: datadropbox3061.ddns.net
                                        
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.13) Gecko/20101203 Firefox/3.6.13
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Keep-Alive: 115
Connection: keep-alive

                                         
                                         199.192.28.70
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Mon, 10 Jun 2019 01:52:09 GMT
Content-Length: 209
Connection: keep-alive
Keep-Alive: timeout=60


--- Additional Info ---
Magic:  HTML document text\012 exported SGML document text
Size:   209
Md5:    18ffb59b61525f781cf9251045be575d
Sha1:   bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
Sha256: b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642

Alerts:
  urlquery:
    - DynDNS domain detected